Oregon Department of Human Services data breach impacted 645,000 clients

Oregon Department of Human Services announced it was a victim of a data breach in January, roughly 645,000 potentially impacted.

Oregon Department of Human Services officials confirmed that the organization has suffered a data breach that has exposed personal details and health information of 645,000 clients.

The incident happened in January and the Oregon Department of Human Services is notifying the incident to the clients.

“The Oregon Department of Human Services is notifying about 645,000 clients whose personal information is now at risk from a January data breach. State officials announced the notifications on Tuesday. They‘ll will start mailing them on Wednesday.” states the Statesman-Journal.

“Affected people were enrolled in the department’s welfare and children services programs at the time of the breach. Officials said the compromised data includes personal health information, but it’s unknown if was viewed or inappropriately used.”

Individuals impacted by the data breach were enrolled in the department’s welfare and children services programs at the time of the security incident.

“The state is also providing 12 months of identity theft monitoring and recovery services, which includes a $1 million insurance reimbursement policy to impacted individuals.” reads the Associated Press.

The department was hit by a phishing campaign on January 8, 2019, and at least nine employees have been deceived in the attack.

“The breach happened during an email “phishing” attempt that targeted the department Jan. 8. Nine employees opened the email and clicked on a link that gave the perpetrator access to their email accounts.” concludes the AP.

[adrotate banner=”9″]

[adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – Oregon Department of Human Services, hacking)

[adrotate banner=”5″]

[adrotate banner=”13″]